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Disposition of Claims 

4) ^ Claim(s) 9-23 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) E3 Claim(s) 9-23 is/are rejected. 
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DETAILED ACTION 
Response to Arguments 

L Applicant's arguments, see Remarks, filed 10/6/2006, with respect to the rejection(s) of 
claim(s) 9 under 35 USC section 103 as obvious by Spicer and McMullan have been fully 
considered and are persuasive. Therefore, the rejection has been withdrawn. However, upon 
further consideration, a new ground(s) of rejection is made in view of 35 USC section 103 as 
obvious by Spicer and Harsch. 

Claim Rejections - 35 USC §103 

2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

3. Claims 9-10, 13-15, 20 and 22 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over U.S. Patent Number 7,007,093 to Spicer et al. in view of U.S. Patent Number 7,088,698 to 
Harsch et al.. 

4. As to claim 9, Spicer teaches a method of accessing an internal network device on a 
protected network, the network including a security device, the method comprising: storing data 
addressed to the internal network device in an external proxy server (col. 4, lines 4-24, the Proxy 
Server 1 14 stores data addressed to the Network Resources 104.); maintaining a proxy agent on 
the protected network, the proxy agent executing the step of: polling the external proxy server for 
data addressed to the internal network device, where polling includes: connecting to the external 
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proxy server to check for pending traffic (col. 4, lines 4-24, the Polling Server 116 polls the 
Proxy Server 1 14); receiving from the external proxy server when the external proxy server has 
received data from a client (col. 4, lines 4-24, Polling Server receives client request for Network 
Resources 104); forwarding to the internal network device any data on the external proxy server 
and addressed to the internal network device; and forwarding to the external proxy server any 
data addressed to an external device in communication with the external proxy server (col. 4, 
lines 4-24, the Network Resources 104 are disclosed as being printers and file servers and other 
similar devices which inherently send responses); however Spicer does not explicitly teach the 
external proxy server sending a stream of spurious bytes if there is nothing pending for the 
internal network device. 

Harsch teaches a method of receiving a stream of spurious bytes from a proxy server if 
there is nothing pending for the network device (col 4, line 54-col. 5, line 5, the keepalive packet 
is considered spurious bytes to maintain the connection). 

It would have been obvious to one of ordinary skill in the Computer Networking art at the 
time of the invention to combine the teachings of Spicer regarding communication through a 
private network with the teachings of Harsch regarding the transmission of spurious bytes 
because spurious bytes keep communication channels open and thus preventing communication 
channels from being prematurely closed (Harsch, col. 9, lines 47-59). 

5. As to claim 10, Spicer teaches a method of polling the external server at regular intervals 
(col. 4, lines 4^24). 
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6. As to claim 13, Harsch teaches a method of multiplexing multiple requests from the 
proxy agent to proxy server through the same connection (col. 4, line 54-col. 5, line 5, the 
connection is kept open so multiple requests can be made). 

7. As to claim 14, Spicer teaches a method of maintaining by the proxy server maps 
between local TCP/IP ports of the proxy server and private IP addresses on the protected 
network, the maps being distinguished by an identity of the proxy agent used to access them (col. 
4, lines 4-44). 

8. As to claim 15, Spicer teaches a method of publishing by each proxy agent a list of 
addresses it can reach to the external proxy server, the external proxy server using this list to 
create a respective map between local ports and proxy agents (col. 4, line 55-coL 5, line 15). 

9. As to claim 20, Spicer teaches a method of providing network administrators control over 
the system including granting administrators the ability to allow and deny entry into the 
protected network on a per session basis (col 4, line 55-col. 5, line 15). 

10. As to claim 22, Spicer teaches a method of providing a network administrator control 
over the system including granting administrators the ability to allow and deny entry into the 
protected network on a per session basis (col. 8, lines 39-58). 

11. Claim 1 1-12, 16, 20-21, and 23 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over U.S. Patent Number 7,007,093 to Spicer et al. in view of U.S. Patent Number 7,088,698 to 
Harsch et al. in further view of U.S. Patent Number 6,510,464 to Grantges Jr. et al.. 

12. As to claim 1 1, the Spicer- Harsch combination does not explicitly teach the use of two 
separate protocols to inside and outside the private network. 
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Grantges Jr. teaches a method of communicating by an internal network device with a 
proxy using a first network protocol and an external network device communicating with the 
proxy using a second protocol (Figure 7). 

It would have been obvious to one of ordinary skill in the Computer Networking art at the 
time of the invention to combine the teachings of the Spicer- Harsch combination regarding 
communication to devices on a private network with the teachings of Grantges, Jr. regarding the 
use of different protocols inside and outside of the private network because some connections 
may be required to be secure. 

13. As to claim 12, Grantges Jr. teaches a method wherein data addressed to an internal 
network device using a second network protocol is transmitted to the internal device using the 
first protocol so that the second protocol is carried to the internal network device inside the first 
network protocol (HTTP traffic is encrypted using HTTPS). 

14. As to claim 16, the Spicer- Harsch combination does not explicitly teach ensuring cookie 
delivery. 

Grantges, Jr. teaches a proxy server that ensures proper cookie routing (col. 1 1, line 63- 
col. 12, line 10). 

It would have been obvious to one of ordinary skill in the Computer Networking art at the 
time of the invention to combine the teachings of the Spicer- Harsch combination regarding a 
system for communicating with private network devices with the teachings of Grantges, Jr. 
regarding the routing of cookies because cookies are commonly communicated during HTTP 
communication. 

15. As to claim 18 and 19, they are rejected for the same reason as claims 1 1 and 12. 
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16. As to claim 20, Grantges Jr. teaches the use of X.509 certificates (Fig 7). 

17. As to claim 21, the Spicer- Harsch combination teaches the method of claim 9 however 
the Spicer- Harsch combination does not explicitly teach rewriting cookies with unique 
identifiers. 

Grantges Jr. teaches rewriting cookies with unique identifiers to prevent inadvertent 
transmission of private information to an incorrect recipient on the protected network (col. 9, line 
54-col. 10, line 5). 

It would have been obvious to one of ordinary skill in the Computer Networking art at the . 
time of the invention to combine the teachings of the Spicer- Harsch combination regarding a 
system for communicating with private network devices with the teachings of Grantges, Jr. 
regarding the routing of cookies because cookies are commonly communicated during HTTP 
communication. 

18. As to claim 23, the Spicer- Harsch combination teaches the method of claim 9 however 
the Spicer- Harsch combination does not explicitly teach granting a key for access. 

Grantges teaches a method wherein access is conferred by granting a key with a 
predetermined life span (col. 7, lines 63-col. 8, line 14). 

It would have been obvious to one of ordinary skill in the Computer Networking art at the 
time of the invention to combine the teachings of the Spicer- Harsch combination regarding a 
system for communicating with private network devices with the teachings of Grantges, Jr. 
regarding granting a key because keys are commonly used to identify requesters. 



Conclusion 
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1 9. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Douglas B. Blair whose telephone number is (571) 272-3893. 
The examiner can normally be reached on 9:00am-5 :30pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Andrew Caldwell can be reached on (571) 272-3868. The fax phone number for the 
organization where this application or proceeding is assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 



Douglas Blair 





ANDREW CALDWELL 
SUPERVISORY PATENT EXAMINER 



